6 #include <UserEvent.idl> 78 SSH_HOST_KEY_TYPE_RSA,
79 SSH_HOST_KEY_TYPE_ECDSA
84 SSH_KEY_FPRINT_TYPE_MD5_HEX,
85 SSH_KEY_FPRINT_TYPE_SHA256_BASE64,
86 SSH_KEY_FPRINT_TYPE_UNKNOWN
120 valueobject FrontPanelPrivilegesChanged extends
event.UserEvent {
121 vector<string> oldPrivileges;
128 constant
int ERR_INVALID_VALUE = 1;
169 int setSettings(in
Settings settings);
176 boolean getHttpRedirSettings();
183 void setHttpRedirSettings(in
boolean http2httpsRedir);
190 boolean isHstsEnabled();
197 void setHstsEnabled(in
boolean enable);
273 void getBlockSettings(out
int blockTimeout, out
int maxFailedLogins);
284 int setBlockSettings(in
int blockTimeout, in
int maxFailedLogins);
308 int getIdleTimeoutSettings();
318 int setIdleTimeoutSettings(in
int idleTimeout);
325 boolean getSingleLoginLimitation();
332 void setSingleLoginLimitation(in
boolean singleLogin);
353 vector<SSHHostKey> getSSHHostKeys();
377 vector<string> getSupportedFrontPanelPrivileges();
384 vector<string> getFrontPanelPrivileges();
392 int setFrontPanelPrivileges(in vector<string> privileges);
int roleId
Role id.
Definition: Security.idl:45
int maxPwLength
Maximum password length.
Definition: Security.idl:62
SSH host keys.
Definition: Security.idl:96
IP packet filter rule.
Definition: Security.idl:21
Fingerprints of SSH host key.
Definition: Security.idl:90
string ipMask
Remote IP and network mask.
Definition: Security.idl:22
boolean enabled
true to enable role-based access control
Definition: Security.idl:51
boolean enableStrongReq
true to enable strong password requirements
Definition: Security.idl:60
string endIp
End of IP range.
Definition: Security.idl:44
Role-based access rule.
Definition: Security.idl:42
Password settings.
Definition: Security.idl:57
SSHKeyFingerprintType type
Type of fingerprint.
Definition: Security.idl:92
string fingerprint
Fingerprint of SSH key.
Definition: Security.idl:91
IP packet filter configuration.
Definition: Security.idl:27
SSHHostKeyType
Type of SSH host key.
Definition: Security.idl:77
IpfwPolicy
IP packet filter policy.
Definition: Security.idl:14
boolean enforceNumeric
Passwords must contain at least one numeric character.
Definition: Security.idl:65
vector< SSHKeyFingerprint > fingerprints
Fingerprints of public key.
Definition: Security.idl:99
int idleTimeout
Session idle timeout in minutes.
Definition: Security.idl:143
valueobject PasswordSettingsChanged
This Event is emitted after any of the password-settings has been changed.
Definition: Security.idl:113
Access denied.
Definition: Security.idl:38
PasswordSettings pwSettings
Password settings.
Definition: Security.idl:142
Accept the packet.
Definition: Security.idl:15
RoleAccessControl roleAccessControlV6
Role-based access control settings for IPv6.
Definition: Security.idl:141
SSHSettings sshSettings
SSH authentication settings.
Definition: Security.idl:145
Security configuration This structure is deprecated and will be removed in V3.0, use concrete getters...
Definition: Security.idl:134
RoleAccessControl roleAccessControl
Role-based access control settings.
Definition: Security.idl:140
int minPwLength
Minimum password length.
Definition: Security.idl:61
RoleAccessPolicy
Role-based access policy.
Definition: Security.idl:36
boolean enforceSpecial
Passwords must contain at least one special character.
Definition: Security.idl:66
int agingInterval
Aging interval in days.
Definition: Security.idl:59
boolean enabled
Enforce Restricted Service Agreement.
Definition: Security.idl:104
int userBlockTimeout
User blocking timeout in minutes.
Definition: Security.idl:136
boolean http2httpsRedir
true to enable HTTP-to-HTTPS redirection
Definition: Security.idl:135
vector< RoleAccessRule > rules
List of access rules.
Definition: Security.idl:53
string startIp
Start of IP range.
Definition: Security.idl:43
Access granted.
Definition: Security.idl:37
IpfwPolicy defaultPolicyOut
The default policy for outbound traffic in case no rule matches.
Definition: Security.idl:30
SSHKeyFingerprintType
Type of SSH key fingerprint.
Definition: Security.idl:83
boolean enableAging
true to enable password aging
Definition: Security.idl:58
Role-based access control settings.
Definition: Security.idl:50
boolean allowPasswordAuth
Allow password authentication.
Definition: Security.idl:72
boolean allowPublicKeyAuth
Allow public key authentication.
Definition: Security.idl:73
IpfwPolicy policy
Filter policy.
Definition: Security.idl:23
SSHHostKeyType type
Type of public key.
Definition: Security.idl:98
string key
Public key.
Definition: Security.idl:97
IpfwPolicy defaultPolicyIn
The default policy for inbound traffic in case no rule matches.
Definition: Security.idl:29
Discard packet, send error response.
Definition: Security.idl:17
RoleAccessPolicy defaultPolicy
Default policy.
Definition: Security.idl:52
boolean enforceUpper
Passwords must contain at least one upper case character.
Definition: Security.idl:64
boolean enforceLower
Passwords must contain at least one lower case character.
Definition: Security.idl:63
string banner
Restricted Service Agreement Banner.
Definition: Security.idl:105
vector< IpfwRule > ruleSetOut
Ordered list of outbound firewall rules.
Definition: Security.idl:32
SSH authentication settings.
Definition: Security.idl:71
Restricted Service Agreement settings.
Definition: Security.idl:103
vector< string > newPrivileges
new front panel privileges
Definition: Security.idl:122
Security configuration interface
Definition: Security.idl:126
Silently discard the packet.
Definition: Security.idl:16
IpFw_2_0_0 ipFw
IP packet filter configuration.
Definition: Security.idl:138
IpFw_2_0_0 ipV6Fw
IPv6 packet filter configuration.
Definition: Security.idl:139
boolean enabled
true to enable packet filtering
Definition: Security.idl:28
vector< IpfwRule > ruleSetIn
Ordered list of inbound firewall rules.
Definition: Security.idl:31
Security Configuration
Definition: Security.idl:11
int pwHistoryDepth
Number of entries in password history.
Definition: Security.idl:67
boolean singleLogin
true to enable single login limitation
Definition: Security.idl:144
int userMaxFailedLogins
Maximum number of failed logins before blocking a user.
Definition: Security.idl:137
RoleAccessPolicy policy
Access policy.
Definition: Security.idl:46